Speakers confirmed for 2021
OpRisk North America & Cyber Risk Summit
Tom Kartanowicz CISM, CISS
Regional chief information security officer
MD, cyber & technology risk, global head operational resilience
Financial Economist, Supervision, Regulation and Credit
THE FEDERAL RESERVE BANK OF RICHMOND
Filippo is a financial economist in the Quantitative Supervision and Research (QSR) unit of the Federal Reserve Bank of Richmond. Filippo joined the Richmond Fed in 2014 after earning his doctorate in Finance at the University of Arizona. Prior to moving to the US, Filippo worked one year for Toro Assicurazioni S.p.a. (now Assicurazioni Generali S.p.a.) and obtained his master degree in Actuarial and Statistical Science from the University of Turin. Since he started working for the Richmond Fed he has been heavily involved in Operational Risk as both modeler and examiner.
Director - GRC program manager
Managing director, global head of enterprise risk
Rajat Baijal is the Managing Director – Global Head of Enterprise Risk at Cantor Fitzgerald. In this role, he is responsible for designing and embedding a robust Risk Framework across the firm. This includes articulating and implementing a robust Risk & Control Self-Assessment (RCSA), Risk Event Management, Key Risk Indicators etc. and ensuring that the Board is suitably informed about all material issues.
Rajat has an MBA in Finance and has previously worked for Kensington Mortgages, Lloyds Banking Group and Aviva specialising in global implementation of their Risk Framework. Rajat is a regular speaker at risk conferences across London and New York and has authored a number of articles for risk journals/textbooks.
Head of model validation
Evan's background is in the measurement and quantification of credit risk and operational risk. His primary focus is currently on supporting institutions in building operational risk modeling for stress testing, developing their risk identification process and developing their model risk management frameworks.
Some of his recent client engagements include:
For a foreign global bank, helped them develop a comprehensive operational risk framework for their US based IHC. Ensured both integration of the framework in their international framework as well as US regulatory compliance.
For a large internationally active US bank: supported major change of course in CCAR operational risk stress estimates a few months prior to submission in reaction to regulatory guidance.
For a large regional bank: built their CCAR loss projection model and wrote the documentation for the full CCAR operational risk submission.
For a global bank conducted a validation of their operational risk modeling framework for CCAR
Prior to joining Oliver Wyman, Evan was the Head of Risk Consulting for Financial Institutions for Aon in Columbia, Maryland. He was in charge of building Aon's risk consulting practice for financial institutions and managed multiple teams based in North America and Europe to deliver services to clients worldwide. Previously, Evan was an Assistant Vice President of the Federal Reserve Bank of Richmond, where he created the center of excellence for operational risk which served the System needs for operational risk related matters. The team was in charge of the supervision of all AMA and CCAR banks in the US and developed the Fed's CCAR model for operational risk.
Evan earned a B.A. and M.A. in Economics from the Université Catholique de Louvain in Belgium. He received an additional M.A. as well as his Ph.D. in Economics from the University of California at Los Angeles.
Third party risk management, operational risk management, contract management
Sterling National Bank
Chief executive officer
Ken Radigan is currently the CEO of the Professional Risk Managers’ International Association (PRMIA). Ken also teaches Insurance Risk Management at Columbia University’s Master of Professional Studies in Insurance Management.
Ken served as the Chief Risk Officer (CRO) for US and Bermuda platforms of Aspen. Prior to this, Ken was the CRO for the Casualty and Global Risk Solutions Divisions of AIG. Ken had worked at AIG for over 25 years and during this time he had the following responsibilities:
CRO Casualty and Global Risk Solutions
- Director of corporate catastrophe modeling
- Product line manager for the Environmental Protection Programs
- Product line manager for the Cleanup Cost Cap programs
- Actuarial analyst for the corporate actuarial department
Ken was the inventor of two US Patents on Nuclear Decommissioning Insurance.
Ken has a Bachelor of Arts degree with a major in Mathematics from the University of Dayton and has the following professional designations:
- Professional Risk Manager, PRM
- Chatered Property Casualty Underwriter, CPCU
- Associate in Risk Management, ARM
- Associate in Surplus Lines Insurance, ASLI
- FINRA Series Certifications: 6,63,66, and 7
Head of cybersecurity risk, data risk and technology risk
Managing director, operational risk management, technology and cybersecurity
Mandar has over 20 years of engineering and risk management experience across Technology Operations, Governance and Audit, helping organizations meet business objectives through technology. Currently he is serving as a Managing Director at Citigroup in the Operational Risk group. Prior to Citi, Mandar was the Global CTRO at TD Bank Group, before which he served as the CTRO and CISO at the Bank of Montreal. In his prior career, Mandar has worked extensively with financial institutions globally through leadership roles at Cisco Systems, Inc., Accenture LLC, Alvarez & Marsal LLP, KPMG LLP and Ernst & Young LLP.
Mandar is an active member of the professional community and has presented at industry forums like Risk.Net, RSA and IAPP Conferences. Additionally, he is active in various profesional organizations such as ISACA, IAPP and ISC2 and has served as the Chair of the Canadian Banking Association’s CIRT (CISO Forum). He holds the CISSP, CIPP, CISA, and PMP certifications.
Mark Schnieder, CAMS
Financial crime specialist
Derivatives Service Bureau (DSB)
Malavika Solanki is part of the Management Team at the Derivatives Service Bureau, (DSB), a global numbering agency for OTC derivatives that allocates ISINs, CFI codes and FISNs - all recognised and adopted ISO standards for identifying, classifying and describing financial instruments. The DSB will in due course also provide UPIs, following recent nomination by the Financial Stability Board. Malavika has worked in the OTC derivatives market for over 20 years, is part of the team that oversees the DSB and was previously responsible for the development of LCH. Clearnet’s credit default swap clearing service. Malavika’s experience lies predominantly in launching and scaling new ventures across a variety of OTC derivative asset classes, with skills focused on service and product development and business modelling. Malavika is a graduate of London Business School’s Executive MBA programme and enjoys mentoring high-growth, fintech teams.
Director of regulatory affairs
The Institute of International Finance (IIF)
Head of operational risk management
Rosbank Societe Generale Group
Principal, Consulting Services Technology Risk
Jordan Serre is a Principal with over 15 years of experience at EY focused on helping clients address and manage business and information technology risk, enhancing their control environment, and supporting the expanding regulatory demands across the banking, capital markets, asset management, insurance, and FinTech sectors.
Jordan leads EY’s Third Party Risk Management activities for West coast financial services clients and also has extensive experience leading a broad range of engagements helping clients improve their risk and control capability including GRC system support, internal audit, external audit, service organization control reporting, IT risk management, along with other IT risk and control advisory projects.
SVP, financial crime - Compliance
VP operational resilience
Chris is a member of Milliman’s Cyber Risk Solutions (CRS) practice group. The practice delivers a portfolio of risk consulting services, such as enterprise risk design, cyber risk assessment and quantification, test and build projects, operational risk assessments, enterprise risk management (ERM) education and training, and ERM technology evaluation. The CRS practice uses diagnostic consulting strategies to understand an organization’s enterprise risk goals and challenges and then customize solutions to deliver required business results.
Chris has 15 years of professional experience. His experience includes work in the banking, insurance, capital markets and card sectors helping clients assess and mitigate risk.
Prior to joining Milliman, Chris was a Senior Manager in Accenture’s Finance and Risk Management Consulting practice, delivering work for global financial service clients. Additionally, Chris served as an active duty Naval Officer and has multiple overseas deployments.
Professional experience and subject matter advisory includes:
- Cyber Security metrics and governance
- Financial Service Regulatory and Compliance initiatives
- Risk Management
- Corporate and Risk Governance
- Financial Services operating model and cost reduction
- Regulatory remediation and responses
- Legal department risk and optimization
- Leading large cross functional projects and teams
- BS Political Science, University of Wisconsin–Madison
- MBA, University of Chicago – Booth School of Business
Risk management executive and consultant; managing director, operational risk management
Jay Newberry has over thirty years of experience in risk management.
Currently, he is engaged as Principal, Greenwich Risk Management Consulting, focused on Enterprise Risk Management and Operational Risk Management in the financial services industry.
Recently, Jay also served as an adjunct Lecturer in the Enterprise Risk Management Program at Columbia University teaching courses in Operational Risk Management, and Traditional Risk and ERM Practices.
Jay retired from Citigroup where he was responsible for the global Operational Risk Policy and Framework for identifying, assessing, monitoring, and communicating operational risk and the overall effectiveness of the control environment.
His responsibilities included standards for Risk Identification and Monitoring, spanning risk appetite, key operational risks and key indicators, and concentration risk. He was also responsible for standards for Scenario Analysis and related stress loss forecasting processes.
In addition, Jay established and oversaw the independent verification processes for operational risk covering Basel AMA and CCAR and has facilitated a number of key global operational risk management governance committees.
Jay led U.S. regulatory relations for operational risk and partnered across Citi on global regulatory matters.
In his most recent role, he had responsibility for developing Citi’s Lessons Learned Policy and program, spanning all risk types.
Jay’s prior experience at Citi included leadership positions in developing and executing credit risk analytics, portfolio derivatives, risk capital, and credit portfolio management tools. He began his banking career as Senior Analyst in Citi’s Corporate Finance Analysis Department where he engaged in marketing initiatives and credit approvals for the large corporate market.
Jay earned his BA degree in Economics from Middlebury College and his MBA from the Tuck School at Dartmouth.
Head of Americas operational risk
Managing Director, Financial Crimes
Nik is a Managing Director and co-lead of the Fraud Advisory Technology and Operations practice of EY with over 15 years of experience in the banking, capital markets, and insurance industries, providing financial crime advisory services to many of the largest global institutions across five continents.
Nik has successfully guided large and complex initiatives spanning fraud prevention, detection, investigation, and claims processes, customer identity and authentication, cyber risk, regulatory compliance, AML, KYC, sanctions, operational risk and payments. His advisory experience includes working with large and mid-size firms in the execution of financial crime capability/maturity and risk assessments, strategy and roadmap definition, and implementation of governance and control frameworks with an emphasis on leveraging technology. Nik has worked extensively with financial services firms to design and build fraud programs spanning all three lines of defense, covering a diverse range of internal and external fraud risks and upstream cyber threat vectors.
Nik led the business requirements team for IBM’s Counter-Fraud platform. He also oversaw multinational teams that designed and built first-of-a-kind solutions spanning data analytics, counter-fraud, case management, list screening, AML and KYC. He led implementations of enterprise financial crimes platforms for top-tier US, Canadian, European, Asian, and African financial institutions. This included engagements performed under regulatory scrutiny
Arthur Lindo (Art)
Deputy director for policy
Federal Reserve Board's Division of Supervision and Regulation
Third-Party Risk Solutions Engineer
Shea Murphy serves as a Third-Party Risk Solutions Engineer for OneTrust VendorpediaTM – a purpose-built software designed to operationalize third-party risk management.
In her role Murphy advises companies throughout their third-party risk management implementations to help meet requirements relating to relevant standards, frameworks, and laws (e.g. ISO, NIST, SIG, GDPR and CCPA). Murphy works with clients to centralize their third-party information across business units, assess risks and performance, and monitor threats throughout the entire third-party relationship, from onboarding to offboarding.
Partner/Principal, Business Consulting
Brandon serves as the EY Americas Financial Services Sustainable Finance Leader. He has more than 25 years of consulting experience, with a focus on advising financial services clients on sustainable finance, risk, regulatory and compliance management.
Prior to joining EY, Brandon specialized in the energy services industry, working with clients to gain savings on their energy costs and reduce their carbon footprint.
Senior director of product marketing
Fusion Risk Management
Head of Americas supervision
Stan is the Head of Americas Supervision at Citadel Securities where he covers the Equities, Futures, ETFs, and systematic trading businesses. Stan is also an Adjunct Professor at Fordham University School of Law teaching Quant Trading & US Market Structure Regulation as well as a FinTech Advisory Board Member with the University of South Florida’s College of Business. Stan previously was a Compliance Officer at Marshall Wace North America L.P. where he specialized in Quantitative Compliance and helped build the core US compliance program. Prior to that he worked at Knight Capital Group focusing on algorithmic trading, market structure, and surveillance. He holds a J.D. in Law from Fordham University School of Law where he was an Associate Editor on the Journal of Corporate & Financial Law, and additionally holds an M.Eng. in Engineering Management, M.S. in Pharmaceutical Manufacturing Engineering, and M.A. in Technology, Policy & Ethics from Stevens Institute of Technology. Stan is Certified in Risk and Information Systems Control (“CRISC”) and is also a Certified Fraud Examiner (“CFE”). Stan is a Global Panelist on the MIT Technology Review and lectures and publishes on industry topics including FinTech, RegTech, market structure, alternative data, artificial intelligence, regulatory and enforcement matters, surveillance, cybersecurity, data privacy, and risk management.
Executive Director, Technology Consulting
Alex Shulman-Peleg, PhD, is a Managing Director leading the Cloud Cybersecurity consulting services of Ernst & Young in the Americas. She is supporting multiple clients in their secure enablement of public clouds and container technologies, addressing the involved risk, cybersecurity and regulatory requirements. In her previous role, she was a Director of Cloud Security at Citibank, where she has established and led a CISO cloud security program, as well as cloud-native security engineering. In her role, she was responsible for the cloud and container security solutions, processes and architectures, delivering protection, detection and auto-remediation in public and private clouds. Prior to Citi, Alex developed secure Clouds and related security products at IBM Research, leading security innovation in multi-year EU Cloud consortium projects.
She has over two decades of technological leadership and holds PhD, MSc and BSc degrees in Computer Science from Tel-Aviv University. She has multiple patents and more than 30 scientific publications having thousands of citations.
Head of Operational Risk
Gus Ortega is an accomplished risk management executive with over 20 years of work experience for multi-national global financial institutions. He is currently the Vice President, Head of Technology, Innovation and Operations risk management at Voya Financial. Prior to joining Voya Financial, Gus was the Head of Operational Risk Management at AIG directly responsible for the global Operational Risk program including Business Continuity and Third-Party Risk Governance and Oversight.
Gus also held various senior risk positions at UBS Investment Bank, Dresdner Bank and Morgan Stanley throughout his 20 years of work experience in the industry. He is an active advocate for Operational Risk Management and most recently was the keynote speaker at the World Bank Operational Risk Workshop in Washington D.C., Gus is also the co-author of The Fundamentals of Operational Risk for Insurers, a Risk.net book published in 2017.
Enterprise Risk Solutions Specialist
Charles Nicholls is an Enterprise Risk Solutions Specialist and currently serves as the Senior Sales Executive at MetricStream.
Prior to MetricStream, Charles has held various Sales, Audit and Enterprise GRC solution positions for Thomson Reuters, Refinitiv, Galvanize and BT.
With more than 30 years of experience, Charles was also the founder of the Inspiration Sales Consultants company, which offered Sales and Marketing Consulting services to Financial Markets.
Senior bank examiner, operational risk governance
Federal Reserve Bank of New York
Rick is a Senior Bank Examiner. He joined the Operational Risk Governance unit at the New York Fed in December, 2011 in the Financial Institutions Supervisory Group (FISG).
Rick began his career as a municipal finance attorney, then joined J.P. Morgan & Co., where played a variety of roles in markets and investment banking. In the late 1990s, Rick joined J.P. Morgan's original operational risk development team. There, he was responsible for framework development tasks and loss data collection and reporting systems. While at J.P. Morgan, Rick chaired the IIF subcommittee that drafted the finance industry's recommendations for Basel II event type categories, and later participated in the definition of loss data recording standards for the Operational Risk data eXchange (ORX). Before joining the Fed, Rick was an operational risk framework consultant for RiskBusiness International, designing customized taxonomic models and structured risk management programs for institutional clients.
Rick has been a writer, speaker and business school instructor on operational risk topics. He received a B.A. (Economics) and M.A. (Organizational Behavior) from Yale University, and a J.D. from University of Connecticut School of Law (Law Review, lead articles editor).
With many years of experience deploying business continuity and risk management platforms globally, Rich Cooper oversees customer success and business development for large, global accounts.
Rich has more than 20 years of experience in the business continuity and risk management marketplace, running programs and implementing software in both Europe and North America for some of the world’s largest organizations. He has an MBCI certification from the Business Continuity Institute.
Integrated Risk Management Strategist
Steve Schlarman applies his experience in Risk Management, GRC, security and product design and architecture as a strategist for Archer. Steve is responsible for research and thought leadership related to integrated risk management across the Archer suite. Steve joined Archer in 2001 and has held multiple positions over the last decade. He has designed, built and evangelized integrated risk management solutions in a wide variety of capacities.
Prior to joining Archer, Steve was one of the founders and the Chief Strategist for Brabeion Software, an early IT GRC platform, where he was responsible for overall product strategy, product management and content management. Before Brabeion Software, Steve was a Director in PricewaterhouseCoopers’ Advisory Practice focusing exclusively on information security consulting and auditing. Steve served as PricewaterhouseCoopers’ global Subject Matter Expert on Enterprise Security Architecture and Security Policy as primary developer of PricewaterhouseCoopers' early GRC technology tool ESAS, the Enterprise Security Architecture System.
Steve is a respected author, spokesperson and evangelist. Steve holds a patent for his Composite Based Risk System (issued 7/2013, US8478628 B1). Steve received a Bachelor of Science degree in Mathematical Sciences from Southern Illinois University-Edwardsville and holds both the CISSP and CISM certifications.
Principal, Financial Crimes
Keith is a New York-based Principal in EY’s Consulting Services practice. He has 25 years of experience in helping global financial institutions counter financial crimes and fraud. He has lead several engagements around designing and customizing fraud detection and prevention programs using optimal processes and technology. His key focus areas include fraud operating models, authentication, fraud prevention/detection, and case management and Robotics Process Automation.
Keith has lead several successful programs across the globe for multinational financial institutions targeted at enhancing their business process and IT systems to counter financial crimes. He has overseen multiple efforts to help clients establish centers of excellence in analytics and robotics focusing on assessing critical data elements for key AML related activities.
He has had experience building real-time fraud detection solution using AI, Analytics and Machine learning across different vendor solutions like NICE Actimize, Brighterion, ThetaRay, Gurdian Analytics at several clients.
Prior to joining EY, Keith has held several senior leadership roles at EMC, KPMG and BearingPoint delivering technology and operating solutions in the risk and compliance sector.
Managing Director, FSO - Markets Enablement
Chris is a Managing Director at EY with 15+ years of experience in risk management with a focus in third party risk, cybersecurity and resiliency. Chris’ expertise includes building sustainable operations and product delivery from scratch to deliver third party control validation and scaled risk management and technology control functions globally. Throughout his career he has developed functions that align, design and deliver new products and integrated services as solutions.
Chris is actively involved with sector enhancement efforts and regularly speaks as a representative of them. His last presentation on Third Party Risk was at a US Federal Reserve System National Cloud Summit highlighting the benefits, risks and challenges of migration strategies to the public cloud environment.
Chris joined EY in May 2020 after spending two years building and operating a third party risk focused consortium effort on behalf of JP Morgan Chase, Bank of America, Bank of New York Mellon, Wells Fargo and American Express as COO. The 5 years preceding that were spent building, implementing, and operating a global, third party risk management function at one of the world’s largest financial institutions. In this role Chris was accountable for the organization’s third party due diligence activities across all phases of the relationship, the third party cyber product, driving focused residual risk reduction and led numerous initiatives to mature the Third Party Oversight and Controls program.
Chief Information Security Officer (CISO)
As a transformational leader within cybersecurity, Samir has over 20 years of development, risk and IT security program leadership.
Gordon G Liu
EVP US Head of Global Risk Analytics
Gordon is EVP, Regional Head of Global Risk Analytics at HSBC. He is responsible for the development and implementation of models used for calculating wholesale credit, market and counterparty credit risk metrics, financial crime compliance, including anti-money laundering and sanctions analytics, as well as regulatory compliance and operational risk analytics. Additionally, he is responsible for interacting with regulatory agencies to ensure HSBC’s compliance in quantitative aspects with the relevant risk and compliance regulations.
Gordon received a PhD in electrical and systems engineering from University of Connecticut and his undergraduate and master degrees from Huazhong University of Science and Technology, Wuhan, China.
Bank of America
Debbie Kirby is currently the Compliance and Operational Risk executive for climate change. In preceding roles, Debbie provided risk management coverage for change management, technology, business continuity, third party, item processing, payment operations, global markets operations, merchant card services, trade finance, and other global banking and markets functions.
Debbie has been with Bank of America for 32 years. Prior to beginning her risk management career, Debbie held senior roles in Global Transaction Services (GTS), focused on internet delivery, liquidity products, client services and payments. She led the product design and roll out for the bank’s first internet delivery solution for GTS clients and managed a number of product, transition and strategic initiatives.
Debbie holds a BBA degree in Finance from Southern Methodist University. She lives in Dallas, TX with her husband and two children.
Independent operational risk management consultant
Yakut Akman brings 35 years of diverse banking experience to her role of Chief Third Party Management Officer. She has responsibility, authority and accountability for the end-to-end Third Party Management Program, and leads global efforts to strengthen Citi's organizational framework, as well as processes and tools to manage third party risk.
Yakut's Citi career started in Istanbul, Turkey, as a Management Trainee. She then managed several trading support groups in New York ranging from Capital Markets and Fixed Income to Foreign Exchange, and was instrumental in establishing Citi's Interest Rate Derivatives Operations in the early 1990s. In 1996 she transferred to London as Director of Trade Services in Europe, managing Citibank's main service delivery hub in London supporting Europe.
Yakut is known for her abilities to connect operational details to the strategic business vision and drive meaningful change - an approach sharpened by many years in Operation & Technology and her role as Program Director in in Citi's Internal Audit, overseeing critical Investment and Consumer banking businesses, and also serving as Deputy Chief Auditor of Citi's Student Loan Corporation.
Prior to her current role, Yakut served as Global Head of Risk Management for Citi's Enterprise Infrastructure. Her responsibilities covered all operational risk disciplines including Information Security, Continuity of Business, and Third Party Management.
Yakut is a member of the Information Systems Audit and Control Association (ISACA) and is certified in CISA (Certified Information Systems Auditor). She is a Magna Cum Laude graduate of Mount Holyoke College with a degree in Economics.
Head of fraud & financial crimes consulting